Re: 127.0.0.0/8 addresses from the network
On Fri, Mar 09, 2001 at 08:47:41AM -0400, Peter Cordes wrote:
> Yes. It uses rp_filter (this is controlled in /proc/sys/... Read
Also by:
/etc/ipmasq/rules/I15lospoof.def
if you have the ipmasq package installed:
# deny and log all packets trying to come in from a 127.0.0.0/8 address
# over a non-'lo' interface
[snip]
ipchains)
$IPCHAINS -A input -j DENY -i !lo -s 127.0.0.1/255.0.0.0 -l
;;
Btw, to the original poster: any rules said to apply to "2.1" kernels
also apply to 2.2 kernels... not to worry.
HTH.
Reply to: